e189174f268621edbb0f5060116b6bfcd69b921581994c8945230f20ae4e09f8 | Triage

Sharing

General

Target

e189174f268621edbb0f5060116b6bfcd69b921581994c8945230f20ae4e09f8
Size

326KB
Sample

221123-h3ez8seg83
MD5

35a07d0b13aec32c5086c91e8396abfd
SHA1

fd13abc606a50d418456f55175de456d827fd52e
SHA256

e189174f268621edbb0f5060116b6bfcd69b921581994c8945230f20ae4e09f8
SHA512

6083b7fe74f9ee2c14e3636b3e2e1a5da5c9382f533dfee03fe521ca86578dfba4ae122bb5e55077f4f497c5e87357124efefda830774221b01de8c8d716c11b
SSDEEP

6144:Sr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgz:Sr4gu6/eIo4nULZKMRwxuPfk6L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e189174f268621edbb0f5060116b6bfcd69b921581994c8945230f20ae4e09f8
- Size
  
  326KB
- MD5
  
  35a07d0b13aec32c5086c91e8396abfd
- SHA1
  
  fd13abc606a50d418456f55175de456d827fd52e
- SHA256
  
  e189174f268621edbb0f5060116b6bfcd69b921581994c8945230f20ae4e09f8
- SHA512
  
  6083b7fe74f9ee2c14e3636b3e2e1a5da5c9382f533dfee03fe521ca86578dfba4ae122bb5e55077f4f497c5e87357124efefda830774221b01de8c8d716c11b
- SSDEEP
  
  6144:Sr4I9uEo2S1YnQmCX492DkwNP3qpYFuT9U1FZA5MRwxuhhfch6clgz:Sr4gu6/eIo4nULZKMRwxuPfk6L
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2